From 4c85c7be8cac70c943163b4c5878a7376cbbf54b Mon Sep 17 00:00:00 2001
From: Mathieu4141 <mathieu@feedly.com>
Date: Tue, 12 Nov 2024 06:58:58 -0800
Subject: [PATCH] [threat-actors] Add Evilbyte

---
 clusters/threat-actor.json | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/clusters/threat-actor.json b/clusters/threat-actor.json
index f38f564a..e6865f19 100644
--- a/clusters/threat-actor.json
+++ b/clusters/threat-actor.json
@@ -17271,6 +17271,18 @@
       },
       "uuid": "c8ade1b0-befd-490e-8888-656dffee4d1c",
       "value": "EvilWeb"
+    },
+    {
+      "description": "EvilByte is a hacktivist group that has conducted several high-profile cyber attacks in 2024, including breaching MyFatoorah's banking system in retaliation against Saudi media 1 and targeting Radio 10 Rosario in Argentina 2. The group has also claimed responsibility for breaching Israeli government websites and leaking data of government employees and intelligence agencies 4.\n\n",
+      "meta": {
+        "refs": [
+          "https://www.cyfirma.com/research/hamas-leadership-assassination-explainer/",
+          "https://x.com/MonThreat/status/1851901195201163720",
+          "https://x.com/MonThreat/status/1821478543001293136"
+        ]
+      },
+      "uuid": "fa65c8b2-50ce-4dea-86a3-8c6b960ce1dd",
+      "value": "Evilbyte"
     }
   ],
   "version": 320